Chapter 3 Commands Specific to the Content Switching Module with SSL

crypto ca import pem

The crypto ca import pem command imports only the private key (.prv), the server certificate (.crt), and the issuer CA certificate (.ca). If you have more than one level of CA in the certificate chain, you need to import the root and subordinate CA certificates before this command is issued for authentication. Use cut-and-paste or TFTP to import the root and subordinate CA certificates.

Examples

This example shows how to import a PEM-formatted file from the Content Switching Module with SSL:

 

ssl-proxy(config)#crypto ca import TP5 pem url tftp://10.1.1.1/TP5 password

 

% Importing CA certificate...

 

Address

or name of remote host [10.1.1.1]?

 

Destination filename [TP5.ca]?

 

Reading

file from tftp://10.1.1.1/TP5.ca

 

Loading

TP5.ca from 10.1.1.1 (via Ethernet0/0.168): !

 

[OK - 1976 bytes]

 

% Importing private key PEM file...

 

Address

or name of remote host [10.1.1.1]?

 

Destination filename [TP5.prv]?

 

Reading

file from tftp://10.1.1.1/TP5.prv

 

Loading

TP5.prv from 10.1.1.1 (via Ethernet0/0.168): !

 

[OK - 963 bytes]

 

% Importing certificate PEM file...

 

Address

or name of remote host [10.1.1.1]?

 

Destination filename [TP5.crt]?

 

Reading

file from tftp://10.1.1.1/TP5.crt

 

Loading

TP5.crt from 10.1.1.1 (via Ethernet0/0.168): !

 

[OK - 1692 bytes]

 

% PEM files import succeeded.

 

ssl-proxy(config)# end

 

ssl-proxy#

 

*Apr 11

15:11:29.901: %SYS-5-CONFIG_I: Configured from console by console

 

crypto ca export pem

Related Commands

Catalyst 6500 Series Switch Content Switching Module with SSL Command Reference

 

OL-7029-01

3-11

 

 

 

Page 233
Image 233
Cisco Systems OL-7029-01 manual Crypto ca export pem